Forum Discussion
Parse CEF logging and a map field within message
Hi all, I have successfully configured the oms-agent and the Microsoft CEF python log forward script on a Ubuntu 20.04 x64 VM to forward Fortinet Analyzer logging to Sentinel. I receive the CEF l...
The conf file you're editing is for non-cef syslog messages. The conf that applies to CEF messages is security_events.conf.